<?php

namespace app\api\controller;

use app\common\controller\Api;
use app\common\library\Ems;
use app\common\library\Sms;
use fast\Random;
use think\Config;
use think\Db;
use think\Validate;

/**
 * 会员接口
 */
class User extends Api
{
    protected $noNeedLogin = ['login', 'mobilelogin', 'register', 'resetpwd', 'changeemail', 'changemobile', 'third'];
    protected $noNeedRight = '*';

    public function _initialize()
    {
        parent::_initialize();
        if (!Config::get('fastadmin.usercenter')) {
            $this->error(__('User center already closed'));
        }
    }
    /**
     * 会员中心
     */
    public function index()
    {
        $this->success('', ['welcome' => $this->auth->nickname]);
    }

    /**
     * 会员登录
     *
     * @ApiMethod (POST)
     * @ApiParams (name="account", type="string", required=true, description="账号")
     * @ApiParams (name="password", type="string", required=true, description="密码")
     */
//    正式
    public function login()
    {
        $account = $this->request->post('username');
        $password = $this->request->post('password');
        $captcha = $this->request->post('captcha');
        $id = $this->request->post('id');
        if (!$account || !$password|| !$captcha) {
            $this->error(__('Invalid parameters'));
        }

        // if (!captcha_check($captcha,$id)) {
        //     $this->error('验证码错误');
        // }

        $ret = $this->auth->login($account, $password);
        if ($ret) {
            $userinfo=$this->auth->getUserinfo();
            $data = ['userinfo' => $userinfo,'accessToken'=>$userinfo['token']];

            //存进token过期时间
            Db::name('token')->insert(['token'=>$userinfo['token'],'expiretime'=>time()+43200]);

            $this->success('账号登录成功', $data);
        } else {
            $this->error($this->auth->getError());
        }
    }
//    正式
    public function userinfo()
    {
        $userinfo=$this->auth->getUserinfo();

        $userinfo['accessToken']  =$userinfo['token'];
        $userinfo['username']  =$userinfo['username'];
        $userinfo['avatar']  ='https://crm.baoleizichan.com/assets/img/avatar.png';
        $userinfo['permissions']  =['admin', 'editor'];

        // 获取用户角色
        $roleId =$userinfo['role_id'];
        $rolename=Db::name('role')->where('id',$roleId)->value('name');
        $userinfo['rolename']=$rolename;

        // 获取用户按钮权限
        $buttonPermissions = Db::name('role_button')
            ->alias('rb')
            ->join('button_permission bp', 'rb.button_id = bp.id')
            ->where('rb.role_id', $roleId)
            ->column('bp.permission_code');
        $userinfo['buttonPermissions']=$buttonPermissions;
        $this->success('成功',$userinfo);
    }


    public function profile()
        {
            $userid=$this->auth->id;
            $userinfo=Db::name('user')->where('id',$userid)->find();
            // 获取用户角色
            $roleId =$userinfo['role_id'];
            $rolename=Db::name('role')->where('id',$roleId)->value('name');
            $departmentname=Db::name('department')->where('id',$userinfo['department_id'])->value('title');
            $userinfo['rolename']=$rolename;
            $userinfo['departmentname']=$departmentname;

            if($userinfo['leader_id']){
                $leaderinfo=Db::name('user')->where('id',$userinfo['leader_id'])->find();
                $userinfo['leader_name']=$leaderinfo['name'];
            }else{
                $userinfo['leader_name']='无';
            }
   
            $this->success('成功',$userinfo);
        }



    /**
     * 手机验证码登录
     *
     * @ApiMethod (POST)
     * @ApiParams (name="mobile", type="string", required=true, description="手机号")
     * @ApiParams (name="captcha", type="string", required=true, description="验证码")
     */
    public function mobilelogin()
    {
        $mobile = $this->request->post('mobile');
        $captcha = $this->request->post('captcha');
        if (!$mobile || !$captcha) {
            $this->error(__('Invalid parameters'));
        }
        if (!Validate::regex($mobile, "^1\d{10}$")) {
            $this->error(__('Mobile is incorrect'));
        }
        if (!Sms::check($mobile, $captcha, 'mobilelogin')) {
            $this->error(__('Captcha is incorrect'));
        }
        $user = \app\common\model\User::getByMobile($mobile);
        if ($user) {
            if ($user->status != 'normal') {
                $this->error(__('Account is locked'));
            }
            //如果已经有账号则直接登录
            $ret = $this->auth->direct($user->id);
        } else {
            $ret = $this->auth->register($mobile, Random::alnum(), '', $mobile, []);
        }
        if ($ret) {
            Sms::flush($mobile, 'mobilelogin');
            $data = ['userinfo' => $this->auth->getUserinfo()];
            $this->success(__('Logged in successful'), $data);
        } else {
            $this->error($this->auth->getError());
        }
    }

    /**
     * 注册会员
     *
     * @ApiMethod (POST)
     * @ApiParams (name="username", type="string", required=true, description="用户名")
     * @ApiParams (name="password", type="string", required=true, description="密码")
     * @ApiParams (name="email", type="string", required=true, description="邮箱")
     * @ApiParams (name="mobile", type="string", required=true, description="手机号")
     * @ApiParams (name="code", type="string", required=true, description="验证码")
     */

//    新增员工
    public function register()
    {
        $role_id = $this->request->post('roleId','');
        $gender = $this->request->post('gender','');
        $top_id = $this->request->post('leaderId','');
        $name = $this->request->post('name');
        $password = $this->request->post('password');
        $department_id = $this->request->post('department_id');
        $email = $this->request->post('email');
        $mobile = $this->request->post('mobile');
        $username = $this->request->post('mobile');
        $avatar= $this->request->post('avatar');
        if (!$username || !$password ||!$name) {
            $this->error(__('请填写姓名手机号和密码'));
        }
//        if ($email && !Validate::is($email, "email")) {
//            $this->error(__('Email is incorrect'));
//        }
        if ($mobile && !Validate::regex($mobile, "^1\d{10}$")) {
            $this->error(__('Mobile is incorrect'));
        }

        $extend=[];
        if($avatar){
            $extend['avatar']=$avatar;
        }
        if($role_id){
            $extend['role_id']=$role_id;
        }
        if($top_id){
            $extend['leader_id']=$top_id;
        }
        if($gender){
            $extend['gender']=$gender;
        }
        if($department_id){
            $extend['department_id']=$department_id;
        }
        $extend['name']=$name;
//        $ret = Sms::check($mobile, $code, 'register');
//        if (!$ret) {
//            $this->error(__('Captcha is incorrect'));
//        }

        $ret = $this->auth->register_staff($username, $name,$password, $email, $mobile, $extend);


        if ($ret) {
            $this->success();
        } else {
            $this->error($this->auth->getError());
        }
    }

    /**
     * 退出登录
     * @ApiMethod (POST)
     */
    public function logout()
    {
        if (!$this->request->isPost()) {
            $this->error(__('Invalid parameters'));
        }
        $this->auth->logout();
        $this->success(__('Logout successful'));
    }

    /**
     * 修改会员个人信息
     *
     * @ApiMethod (POST)
     * @ApiParams (name="avatar", type="string", required=true, description="头像地址")
     * @ApiParams (name="username", type="string", required=true, description="用户名")
     * @ApiParams (name="nickname", type="string", required=true, description="昵称")
     * @ApiParams (name="bio", type="string", required=true, description="个人简介")
     */
    public function profile_old()
    {
        $user = $this->auth->getUser();
        $username = $this->request->post('username');
        $nickname = $this->request->post('nickname');
        $bio = $this->request->post('bio');
        $avatar = $this->request->post('avatar', '', 'trim,strip_tags,htmlspecialchars');
        if ($username) {
            $exists = \app\common\model\User::where('username', $username)->where('id', '<>', $this->auth->id)->find();
            if ($exists) {
                $this->error(__('Username already exists'));
            }
            $user->username = $username;
        }
        if ($nickname) {
            $exists = \app\common\model\User::where('nickname', $nickname)->where('id', '<>', $this->auth->id)->find();
            if ($exists) {
                $this->error(__('Nickname already exists'));
            }
            $user->nickname = $nickname;
        }
        $user->bio = $bio;
        $user->avatar = $avatar;
        $user->save();
        $this->success();
    }

    /**
     * 修改邮箱
     *
     * @ApiMethod (POST)
     * @ApiParams (name="email", type="string", required=true, description="邮箱")
     * @ApiParams (name="captcha", type="string", required=true, description="验证码")
     */
    public function changeemail()
    {
        $user = $this->auth->getUser();
        $email = $this->request->post('email');
        $captcha = $this->request->post('captcha');
        if (!$email || !$captcha) {
            $this->error(__('Invalid parameters'));
        }
        if (!Validate::is($email, "email")) {
            $this->error(__('Email is incorrect'));
        }
        if (\app\common\model\User::where('email', $email)->where('id', '<>', $user->id)->find()) {
            $this->error(__('Email already exists'));
        }
        $result = Ems::check($email, $captcha, 'changeemail');
        if (!$result) {
            $this->error(__('Captcha is incorrect'));
        }
        $verification = $user->verification;
        $verification->email = 1;
        $user->verification = $verification;
        $user->email = $email;
        $user->save();

        Ems::flush($email, 'changeemail');
        $this->success();
    }

    /**
     * 修改手机号
     *
     * @ApiMethod (POST)
     * @ApiParams (name="mobile", type="string", required=true, description="手机号")
     * @ApiParams (name="captcha", type="string", required=true, description="验证码")
     */
    public function changemobile()
    {
        $user = $this->auth->getUser();
        $mobile = $this->request->post('mobile');
        $captcha = $this->request->post('captcha');
        if (!$mobile || !$captcha) {
            $this->error(__('Invalid parameters'));
        }
        if (!Validate::regex($mobile, "^1\d{10}$")) {
            $this->error(__('Mobile is incorrect'));
        }
        if (\app\common\model\User::where('mobile', $mobile)->where('id', '<>', $user->id)->find()) {
            $this->error(__('Mobile already exists'));
        }
        $result = Sms::check($mobile, $captcha, 'changemobile');
        if (!$result) {
            $this->error(__('Captcha is incorrect'));
        }
        $verification = $user->verification;
        $verification->mobile = 1;
        $user->verification = $verification;
        $user->mobile = $mobile;
        $user->save();

        Sms::flush($mobile, 'changemobile');
        $this->success();
    }

    /**
     * 第三方登录
     *
     * @ApiMethod (POST)
     * @ApiParams (name="platform", type="string", required=true, description="平台名称")
     * @ApiParams (name="code", type="string", required=true, description="Code码")
     */
    public function third()
    {
        $url = url('user/index');
        $platform = $this->request->post("platform");
        $code = $this->request->post("code");
        $config = get_addon_config('third');
        if (!$config || !isset($config[$platform])) {
            $this->error(__('Invalid parameters'));
        }
        $app = new \addons\third\library\Application($config);
        //通过code换access_token和绑定会员
        $result = $app->{$platform}->getUserInfo(['code' => $code]);
        if ($result) {
            $loginret = \addons\third\library\Service::connect($platform, $result);
            if ($loginret) {
                $data = [
                    'userinfo'  => $this->auth->getUserinfo(),
                    'thirdinfo' => $result
                ];
                $this->success(__('Logged in successful'), $data);
            }
        }
        $this->error(__('Operation failed'), $url);
    }

    /**
     * 重置密码
     *
     * @ApiMethod (POST)
     * @ApiParams (name="mobile", type="string", required=true, description="手机号")
     * @ApiParams (name="newpassword", type="string", required=true, description="新密码")
     * @ApiParams (name="captcha", type="string", required=true, description="验证码")
     */
    public function resetpwd()
    {
        $type = $this->request->post("type", "mobile");
        $mobile = $this->request->post("mobile");
        $email = $this->request->post("email");
        $newpassword = $this->request->post("newpassword");
        $captcha = $this->request->post("captcha");
        if (!$newpassword || !$captcha) {
            $this->error(__('Invalid parameters'));
        }
        //验证Token
        if (!Validate::make()->check(['newpassword' => $newpassword], ['newpassword' => 'require|regex:\S{6,30}'])) {
            $this->error(__('Password must be 6 to 30 characters'));
        }
        if ($type == 'mobile') {
            if (!Validate::regex($mobile, "^1\d{10}$")) {
                $this->error(__('Mobile is incorrect'));
            }
            $user = \app\common\model\User::getByMobile($mobile);
            if (!$user) {
                $this->error(__('User not found'));
            }
            $ret = Sms::check($mobile, $captcha, 'resetpwd');
            if (!$ret) {
                $this->error(__('Captcha is incorrect'));
            }
            Sms::flush($mobile, 'resetpwd');
        } else {
            if (!Validate::is($email, "email")) {
                $this->error(__('Email is incorrect'));
            }
            $user = \app\common\model\User::getByEmail($email);
            if (!$user) {
                $this->error(__('User not found'));
            }
            $ret = Ems::check($email, $captcha, 'resetpwd');
            if (!$ret) {
                $this->error(__('Captcha is incorrect'));
            }
            Ems::flush($email, 'resetpwd');
        }
        //模拟一次登录
        $this->auth->direct($user->id);
        $ret = $this->auth->changepwd($newpassword, '', true);
        if ($ret) {
            $this->success(__('Reset password successful'));
        } else {
            $this->error($this->auth->getError());
        }
    }

    public function changePassword()
    {
        $newpassword = $this->request->post("newPassword");
        $password = $this->request->post("oldPassword");
        if (!$newpassword || !$password) {
            $this->error(__('Invalid parameters'));
        }

        if (!Validate::make()->check(['newpassword' => $newpassword], ['newpassword' => 'require|regex:\S{6,30}'])) {
            $this->error(__('Password must be 6 to 30 characters'));
        }

        if(  $this->auth->getUser()->password!=$this->auth->getEncryptPassword($password, $this->auth->getUser()->salt)){
            $this->error('原密码错误');
        }

        $salt = Random::alnum();
        $newpassword = $this->auth->getEncryptPassword($newpassword, $salt);

        $this->auth->getUser()->save(['loginfailure' => 0, 'password' => $newpassword, 'salt' => $salt]);


        $this->success(__('Reset password successful'));

    }
    /**
     * 编辑员工信息
     *
     * @ApiMethod (POST)
     * @ApiParams (name="id", type="integer", required=true, description="用户ID")
     * @ApiParams (name="name", type="string", required=true, description="用户名")
     * @ApiParams (name="gender", type="integer", required=true, description="性别")
     * @ApiParams (name="department_id", type="integer", required=true, description="部门ID")
     * @ApiParams (name="leaderId", type="integer", required=true, description="上级ID")
     * @ApiParams (name="mobile", type="string", required=true, description="手机号")
     * @ApiParams (name="roleId", type="integer", required=true, description="角色ID")
     * @ApiParams (name="email", type="string", required=false, description="邮箱")
     */
    public function editStaff()
    {
        $id = $this->request->post('id');
        $name = $this->request->post('name');
        $gender = $this->request->post('gender');
        $department_id = $this->request->post('department_id');
        $leaderId = $this->request->post('leaderId');
        $mobile = $this->request->post('mobile');
        $roleId = $this->request->post('roleId');
        $email = $this->request->post('email');

        if (!$id || !$name || !$mobile) {
            $this->error(__('Invalid parameters'));
        }

        // 验证手机号格式
        if (!Validate::regex($mobile, "^1\d{10}$")) {
            $this->error(__('Mobile is incorrect'));
        }

        // 检查手机号是否已被其他用户使用
        $exists = \app\common\model\User::where('mobile', $mobile)
            ->where('id', '<>', $id)
            ->find();
        if ($exists) {
            $this->error(__('Mobile already exists'));
        }

        // 获取用户信息
        $user = \app\common\model\User::get($id);
        if (!$user) {
            $this->error(__('User not found'));
        }

        // 更新用户信息
        $user->username = $name;
        $user->mobile = $mobile;
        $user->gender = $gender;
        $user->department_id = $department_id;
        $user->leader_id = $leaderId;
        $user->role_id = $roleId;
        if ($email) {
            $user->email = $email;
        }

        if ($user->save()) {
            $this->success(__('Update successful'));
        } else {
            $this->error(__('Update failed'));
        }
    }
}
